Cloudsmith Changelog

Packages scheduled for move will be unpublished prior to move. Fixed an issue with npm tags management, ensuring accurate updates by fixing a bug that previously caused the improper deletion and reinsertion of tags. Copilot poem of the week 🤖 The index of doom was broken and flawed Some tags were lost in the dark abyss But we fixed the bug and…

This week, the Cloudsmith team made the following improvements: Allow users to specify the use of an entitlement tokens name, rather than its identifier when configuring their webhook Fixes an issue where general Permission Denied API responses were including "Geo/IP" when not relevant. Fixed an issue where the Repository>Access Controls UI woul…

This week, the Cloudsmith team made the following improvements: Fixed an issue where an unprivileged user could send an Organization invite via the API which granted elevated privileges. Fixed a sporadic issue where the security scan result detail view would not show all vulnerabilities, and the graphs would not display any data. Fixed an issue…

This week, the Cloudsmith team made the following improvements: Fixed an issue where Managers had Admin privileges on Repositories when the Default Object Permission was set to Read or Write Fixed a bug preventing upload of GPG signing keys without a passphrase Fixed an issue that caused HTTP 413 errors when trying to perform DELETE requests usi…

Organization Managers will no longer have implicit Admin-level access for repositories in which they have been given explicit Read (or more) access. They will now need to be assigned a higher level if required. The change may be a breaking one that requires action on your part but brings it in line with intent. A Manager user is intended to have p…

This week, the Cloudsmith team made the following improvements: Fixed the API documentation for the Entitlement creation endpoint to reflect a 201 status on success Updated RPM setup script to alleviate GPG signature verification errors Added pagination to the team view page in order to improve performance…

This week, the Cloudsmith team made the following improvements: Fixed an issue related to expired user-based entitlement tokens Fixed an issue where packages were incorrectly tagged as "latest" when moved between repositories Fixed a bug so that filtering service accounts functions properly Increased package description character limit Webhook…

This week, the Cloudsmith team made the following improvements: Added support for upstream proxying for users of older Dart clients, using our legacy Dart endpoints. Fixed a bug that was preventing filtering on service accounts from functioning properly. Improved repository upstream setup when fetching GPG keys from a URL; now handles binary key…

This week, the Cloudsmith team made the following improvements: Fixed an issue where Privileges for Specific Users in Access Controls were listed twice in the UI. Corrected behavior in the Dart format, preventing large packages from being uploaded using native tooling. Corrected service account key hover text stating that API keys were read-only…

This week, the Cloudsmith team made the following improvements: Addressed an issue where some login history locations would have an incorrect flag associated with the displayed country A recent fix for Azure compatibility with Docker caused issues with a subset of customers (blob unknown); this has now been reverted, along with additional Docker…